Analysis
-
max time kernel
149s -
max time network
131s -
platform
ubuntu-24.04_amd64 -
resource
ubuntu2404-amd64-20240523-en -
resource tags
arch:amd64arch:i386image:ubuntu2404-amd64-20240523-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system -
submitted
03-02-2025 04:52
Behavioral task
behavioral1
Sample
boatnet.x86.elf
Resource
ubuntu2404-amd64-20240523-en
ubuntu-24.04-amd64
1 signatures
150 seconds
General
-
Target
boatnet.x86.elf
-
Size
48KB
-
MD5
193c0be7d8d6c642c3d9863587f6a4f7
-
SHA1
80f7e3561ec2224003ecf8f10119ac4029fe9f57
-
SHA256
a9ca74cd669782ed8abeb93830961a0f39bf9020cdc340e71941c0f177968927
-
SHA512
30fec42a29dbbd1ca5814aa6ea970e418009e229ff30ca2ee3f20d2bb1a11b0969085bf817976146fa8bd305d2c457b75f22a38cda4187d58225a901253fae8f
-
SSDEEP
1536:6nJRT4QPfZfW5XTOeY3Dve3AGX57/4Qw7bn2iAe:Gv4QPfZfW5XTOeoEzJ7AQwf2i
Score
7/10
Malware Config
Signatures
-
Loads a kernel module 64 IoCs
Loads a Linux kernel module, potentially to achieve persistence
pid Process 2869 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf 2870 boatnet.x86.elf